Nixpkgs security tracker

Dismissed

(not in Nixpkgs)

Permalink CVE-2025-62340

3.1 LOW

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): High (H)
Privileges Required (PR): Low (L)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): Low (L)
Integrity (I): None (N)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): High (H)
Modified Privileges Required (MPR): Low (L)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): Low (L)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): None (N)
Modified Availability (MA): None (N)

updated 2 days, 7 hours ago by @LeSuisse Activity log

Created suggestion 2 days, 11 hours ago
@LeSuisse dismissed (not in Nixpkgs) 2 days, 7 hours ago

HCL iControl was affected by Inadequate Session Timeout vulnerability

HCL iControl was affected by Inadequate Session Timeout vulnerability. The vulnerability involves a security risk where a web application fails to automatically terminate user sessions after a period of inactivity

References

https://support.hcl-software.com/csm?id=kb_article&sysparm_article=KB0131511

Affected products

iControl

==v4.2.0

Matching in nixpkgs

pkgs.python313Packages.f5-icontrol-rest

F5 BIG-IP iControl REST API client

nixos-unstable 1.3.16
- nixpkgs-unstable 1.3.16
- nixos-unstable-small 1.3.16
nixos-26.05 1.3.16
- nixos-26.05-small 1.3.16
- nixpkgs-26.05-darwin 1.3.16

pkgs.python314Packages.f5-icontrol-rest